Malta Sicily

Legal

Privacy Policy

Last updated: July 2026

This policy explains how Stan Properties ("we", "us", "our") collects, uses, shares and protects your personal data when you visit this website or get in touch with us. It also sets out your rights under the EU General Data Protection Regulation (GDPR) and applicable Maltese data-protection law. Please read it alongside any specific notice we give you at the point we collect your information.

1. Who we are (data controller)

Stan Properties is the "data controller" responsible for your personal data on this website. If you have any questions about this policy or how we handle your information, contact us at info@gelderblomconsult.eu or by phone on +356 0000 0000.

2. What we collect

We only collect what we need to help you. Depending on how you use the site, that may include:

  • Details you give us through the enquiry or contact form: your name and email address (required), and optionally your phone number, budget range, buying/renting intent, timeframe and any message you write.
  • Technical data collected automatically: the page you submitted from and your IP address, which we use for security and spam prevention.
  • A single functional cookie used to keep forms secure (see "Cookies" below).

We do not knowingly collect special-category data (such as health, religion or political opinions). Please don't include such information in your message.

3. Why we use it, and our legal basis

Under the GDPR we must have a lawful basis for each use of your data:

  • To respond to your enquiry and provide the guidance you asked for — basis: taking steps at your request before entering a contract, and our legitimate interest in answering enquiries.
  • To contact you about buying, renting or relocating to Malta where relevant to what you asked — basis: your consent and/or our legitimate interest.
  • To protect the website from spam, fraud and abuse (honeypot checks, rate limiting, IP logging) — basis: our legitimate interest in a secure service.
  • To keep proper business records and comply with the law — basis: legal obligation and legitimate interest.

Where we rely on consent, you can withdraw it at any time (see "Your rights"). Where we rely on legitimate interests, you can object to that processing.

4. Who we share it with

We do not sell or rent your personal data. We share it only where necessary:

  • With service providers who help us operate the site and communicate with you — in particular our email/hosting provider, which processes messages on our behalf as a data "processor" under written terms.
  • With professional advisers, or public authorities and law-enforcement bodies, where we are legally required to do so or to protect our rights.

5. International transfers

Your data is stored and processed on servers within the European Union / European Economic Area. If any provider we use processes data outside the EEA, we ensure appropriate safeguards are in place (such as European Commission Standard Contractual Clauses) before any transfer.

6. How long we keep it

We keep enquiry details only for as long as needed to help you and to maintain proper business records — typically no longer than 24 months after our last contact, unless a longer period is required by law — after which they are securely deleted or anonymised. Security logs (such as IP addresses) are kept for a short period and then removed.

7. How we protect it

We use appropriate technical and organisational measures to keep your data safe, including encrypted (HTTPS) connections, hashed administrator passwords, protection against cross-site request forgery, restricted access to stored enquiries, and regular review of our security practices. No method of transmission over the internet is completely secure, but we work to protect your information and to notify you and the relevant authority if a serious breach occurs.

8. Your rights

Under the GDPR you have the right to:

  • access the personal data we hold about you;
  • have inaccurate data corrected;
  • have your data erased ("right to be forgotten") where applicable;
  • restrict or object to our processing;
  • data portability (receive your data in a portable format);
  • withdraw consent at any time, without affecting processing already carried out.

To exercise any of these rights, email info@gelderblomconsult.eu. We will respond within one month. We do not charge a fee unless a request is clearly unfounded or excessive.

9. Cookies

This site uses only the essential session cookie needed to keep forms secure (CSRF protection). It is strictly necessary for the site to function and does not track you. We do not use advertising or third-party analytics/tracking cookies. You can block cookies in your browser, but the forms may then not work.

10. Automated decisions & children

We do not make decisions about you based solely on automated processing, and we do not profile you. This website is intended for adults and is not directed at children; we do not knowingly collect data from anyone under 16.

11. Complaints

If you have a concern, please contact us first and we'll try to put it right. You also have the right to lodge a complaint with your local data-protection authority — in Malta, the Information and Data Protection Commissioner (IDPC); in the Netherlands, the Autoriteit Persoonsgegevens (AP); or the supervisory authority in your country of residence.

12. Changes to this policy

We may update this policy from time to time. The "last updated" date at the top shows when it last changed. Where changes are significant, we will take reasonable steps to bring them to your attention.

13. Contact

Questions about this policy or your data? Reach us at info@gelderblomconsult.eu.

This policy is provided for general information and is not legal advice. Please have it reviewed against your specific obligations before relying on it.